Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Analysis
-
max time kernel
150s -
max time network
152s -
platform
windows7_x64 -
resource
win7-20240903-en -
resource tags
arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system -
submitted
01/10/2024, 14:34
Behavioral task
behavioral1
Sample
e54384fe872d30bf574d7b80311ce1c6d9f86a8db7b6e47cbd03069eea1bdd61.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
e54384fe872d30bf574d7b80311ce1c6d9f86a8db7b6e47cbd03069eea1bdd61.exe
Resource
win10v2004-20240802-en
General
-
Target
e54384fe872d30bf574d7b80311ce1c6d9f86a8db7b6e47cbd03069eea1bdd61.exe
-
Size
16KB
-
MD5
7310548654a0e1bd553ae65d58701160
-
SHA1
792c541411b7ab41ad6caa4df4676fa8006edebc
-
SHA256
e54384fe872d30bf574d7b80311ce1c6d9f86a8db7b6e47cbd03069eea1bdd61
-
SHA512
6c51afaa33dbe29f8eedc29ccf1de8740e0b4989c1542af954380e3b5a6472c4253a1dd57f4ef32155a3c66fe958d080b6d2e91c5b25d916155df1d039f209c1
-
SSDEEP
384:qpi1PKtl50TsvD9oDPlMNcLlb5sVK4yv5Ct:qpi1PKtlMOclMNEvo
Malware Config
Signatures
-
Suspicious use of AdjustPrivilegeToken 1 IoCs
description pid Process Token: SeDebugPrivilege 3020 e54384fe872d30bf574d7b80311ce1c6d9f86a8db7b6e47cbd03069eea1bdd61.exe